472 matches found
CVE-2020-10553
An issue was discovered in Psyprax before 3.2.2. The file %PROGRAMDATA%\Psyprax32\PPScreen.ini contains a hash for the lockscreen aka screensaver of the application. If that entry is removed, the lockscreen is no longer displayed and the app is no longer locked. All local users are able to modify...
CVE-2020-10553
An issue was discovered in Psyprax before 3.2.2. The file %PROGRAMDATA%\Psyprax32\PPScreen.ini contains a hash for the lockscreen aka screensaver of the application. If that entry is removed, the lockscreen is no longer displayed and the app is no longer locked. All local users are able to modify...
Design/Logic Flaw
An issue was discovered in Psyprax before 3.2.2. The file %PROGRAMDATA%\Psyprax32\PPScreen.ini contains a hash for the lockscreen aka screensaver of the application. If that entry is removed, the lockscreen is no longer displayed and the app is no longer locked. All local users are able to modify...
CVE-2020-10553
Psyprax before 3.2.2 is affected. The PPScreen.ini file in %PROGRAMDATA%\Psyprax32 contains a hash for the application’s lockscreen. If the entry is removed, the lockscreen is not displayed and the application is no longer locked. All local users can modify this file, enabling potential bypass of...
CVE-2020-10553
An issue was discovered in Psyprax before 3.2.2. The file %PROGRAMDATA%\Psyprax32\PPScreen.ini contains a hash for the lockscreen aka screensaver of the application. If that entry is removed, the lockscreen is no longer displayed and the app is no longer locked. All local users are able to modify...
CVE-2021-0320
In isdevicelocked and setdevicelocked of keystorekeymasterenforcement.h, there is a possible bypass of lockscreen requirements for keyguard bound keys due to a race condition. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not...
CVE-2021-0320
CVE-2021-0320 affects Android 10/11, describing a race condition in keystore_keymaster_enforcement.h (is_device_locked and set_device_locked) that could bypass lockscreen requirements for keyguard-bound keys. This may lead to local information disclosure without additional privileges, and exploit...
CVE-2021-0320
In isdevicelocked and setdevicelocked of keystorekeymasterenforcement.h, there is a possible bypass of lockscreen requirements for keyguard bound keys due to a race condition. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not...
November 19, 2020—KB4586839 (OS Build 17763.1613) Preview
November 19, 2020—KB4586839 OS Build 17763.1613 Preview 11/10/20 IMPORTANT Because of minimal operations during the holidays and the upcoming Western new year, there won’t be a preview release known as a “C” release for the month of December 2020. There will be a monthly security release known as...
CVE-2020-9959
A lock screen issue allowed access to messages on a locked device. This issue was addressed with improved state management. This issue is fixed in iOS 14.0 and iPadOS 14.0. A person with physical access to an iOS device may be able to view notification contents from the lockscreen...
CVE-2020-26599
An issue was discovered on Samsung mobile devices with Q10.0 software. The DynamicLockscreen Terms and Conditions can be accepted without authentication. The Samsung ID is SVE-2020-17079 October 2020...
CVE-2020-25048
An issue was discovered on Samsung mobile devices with Q10.0 with ONEUI 2.1 software. In the Lockscreen state, the Quick Share feature allows unauthenticated downloads, aka file injection. The Samsung ID is SVE-2020-17760 August 2020...
CVE-2020-25048
An issue was discovered on Samsung mobile devices with Q10.0 with ONEUI 2.1 software. In the Lockscreen state, the Quick Share feature allows unauthenticated downloads, aka file injection. The Samsung ID is SVE-2020-17760 August 2020...
Code injection
An issue was discovered on Samsung mobile devices with Q10.0 with ONEUI 2.1 software. In the Lockscreen state, the Quick Share feature allows unauthenticated downloads, aka file injection. The Samsung ID is SVE-2020-17760 August 2020...
CVE-2020-25048
CVE-2020-25048 affects Samsung mobile devices running Q(10.0) with ONEUI 2.1. In the lockscreen state, the Quick Share feature can perform unauthenticated downloads, enabling file injection. This is tied to Samsung ID SVE-2020-17760 (Aug 2020). The NVD entry provides CVSS metrics (2.1/2.0) and a ...
Microsoft Windows Lockscreen Elevation of Privilege Vulnerability
Microsoft Windows and Microsoft Windows Server are both products of Microsoft Corporation.Microsoft Windows is an operating system for personal devices.Microsoft Windows Server is a server operating system. A security vulnerability exists in Microsoft Windows Lockscreen that originates from the...
CVE-2020-1398
An elevation of privilege vulnerability exists when Windows Lockscreen fails to properly handle Ease of Access dialog.An attacker who successfully exploited the vulnerability could execute commands with elevated permissions.The security update addresses the vulnerability by ensuring that the Ease...
CVE-2020-1398
An elevation of privilege vulnerability exists when Windows Lockscreen fails to properly handle Ease of Access dialog.An attacker who successfully exploited the vulnerability could execute commands with elevated permissions.The security update addresses the vulnerability by ensuring that the Ease...
Privilege escalation
An elevation of privilege vulnerability exists when Windows Lockscreen fails to properly handle Ease of Access dialog.An attacker who successfully exploited the vulnerability could execute commands with elevated permissions.The security update addresses the vulnerability by ensuring that the Ease...
CVE-2020-1398
CVE-2020-1398 corresponds to the Windows Lockscreen Elevation of Privilege vulnerability. The connected CNVD entry confirms the issue originates from improper handling of the Lock screen’s Ease of Use dialog, enabling privilege escalation when exploited. The initial description states exploitatio...